Incorrect Access Control in SeaCMS V13.1 by SeaCMS
CVE-2024-54879
Currently unrated
Summary
The SeaCMS V13.1 platform has a serious vulnerability due to a logic flaw in its access control mechanism. This flaw enables attackers to exploit the system, allowing unauthorized users to recharge user accounts indefinitely. This presents a significant risk to the integrity of user accounts and the overall security of the SeaCMS application, potentially leading to financial losses and abuse by malicious actors.
References
Timeline
Vulnerability published